Snyk empowers developers to easily find and fix vulnerabilities in applications running on OpenShift. This workshop guides users through using Snyk Container and Snyk Infrastructure as Code to identify and remediate security and configuration risks in a sample application deployed into OpenShift.

The Snyk on OpenShift workshop provieds a fully deployed and running Snyk Controller with a deployment of Snyk's vulnerable Goof application and covers the following topics:

1. Reviewing the security and configuration scan results in the Snyk UI.
2. Finding and applying a more secure base image using Snyk’s upgrade guidance.
3. Securing the Goof application's deployment configuration within OpenShift.

Videos

• Learn how to demo Snyk for OpenShift in 10 minutes:

• Learn how Snyk helps developers build secure containers:

Demo

The Snyk for OpenShift RHPDS catalog item can be used for demo purposes as well. Please follow the link to the workshop below and view the videos above to get an understanding of what to demo.

Workshop

This workshop may be provisioned using the Red Hat Product Demo System (RHPDS). Within RHPDS, the catalog item is in the Security category and is called Snyk for OpenShift. All students will be using a shared cluster deployed specifically for this workshop. In RHPDS, before ordering, the catalog item description links to instructions for how to set up your environment and other details about performing the workshop.

• Snyk for OpenShift Workshop Lab Guide

Additional Resources

• Snyk Container One-Pager

• Snyk Infrastructure as Code One-Pager